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DETAILED ACTION 

1 . Original application contained claims 1 - 20. Claims 8 and 1 1 have been 
canceled; claims 1, 10, 13, 16 - 18 have been amended; and new claims 21 and 
22 have been added in an amendment filed on 2/9/2006. The amendment filed 
have been entered and made of record. Presently, pending claims are 1 - 7, 9, 
10 and 12-22. 

Response to Arguments 

1 . In general, Applicant's arguments with respect to instant claims have 
been fully considered but are moot in view of the new ground(s) of rejection. 

2. As per claim 10, Applicant argues: "Veil does not disclose a portable 
encryption control device in a way such that a portable unit that can be attached 
and detached from a computer system without the use of a host interface". 
Applicant's arguments have been fully considered but are not persuasive 
because Applicant's argument is self-contradicting with its own specification that 
states: "providing a portable encryption/decryption device that is configured to 
quickly and conveniently interface with any computer " (Specification: Page 1 Line 
16-17) and therefore, a host computer interface must be supported. 

3. As per claim 10, Applicant argues: "the token reader as taught by Vu can 
be any dumb removable storage device". Examiner disagrees. Vu discloses that 
the removable storage device can be a " smart card " (Vu: Column 1 Line 38), 
which is definitely not a dumb device. 
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Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for 
all obviousness rejections set forth in this Office action: 

A person shall be entitled to a patent unless - 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

2. Claims 1, 7, 9, 16 - 19, 21 and 22 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over Tsuria (U.S. Patent 6178242), in view of Vu et al. (U.S. 
Patent 6557104). 

As per claim 1 , Tsuria teaches an apparatus to enable operation of a 
computer by authorized users when in a secure mode of operation, the 
apparatus comprising: 

a hub, the hub being configured to be portable and in communication with 
the computer (Tsuria: Column 6 Line 57 - 62 and Figure 1 : IRD (Integrated 
Receiver-Decoder) is interpreted as the hub) the hub further including, 

an installed system tray program configured to allow customization of hub 
features; a card reader (Tsuria: Column 9 Line 1-14); 

a hub microprocessor (Tsuria: Figure 1 ) 

an encryption engine configured to encrypt / decrypt data communications 
between the hub and a data storage device protected by the hub (Tsuria: Column 
6 Line56 - Column 7 Line 57) including: 
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a plurality of encryption/decryption channels (Tsuria: Column 9 Line 66 - 
Column 1 0 Line 40 and Figure 1 ); 

a control logic that is configured to determine which encryption / 
decryption channel is available and direct encrypted data passing through the 
hub available encryption / decryption channel (Tsuria: Column 9 Line 66 - 
Column 10 Line 40 and Figure 1); 

a card, the card being configured for insertion into the card reader, the 
card including a card microprocessor (Tsuria: Column 9 Line 1 - 14 & Figure 1 / 
Element 120); and 

However, Tsuria does not disclose expressly a user authentication device, 
the user authentication device being configured to validate the user as an 
authorized user of the card wherein, if the user is validated as the authorized 
user, the card microprocessor being configured to pass a key to the hub 
microprocessor in response to the validation of the user as the authorized user of 
the card, thereby activating the encryption engine of the hub to allow encryption / 
decryption of data communications. 

Vu teaches a user authentication device, the user authentication device 
being configured to validate the user as an authorized user of the card wherein, if 
the user is validated as the authorized user, the card microprocessor being 
configured to pass a key to the hub microprocessor in response to the validation 
of the user as the authorized user of the card (Vu: Column 4 Line 52 - 54), 
thereby activating the encryption engine of the hub to operate in the secure mode 
of operation (Vu: Column 5 Line 24 - 46). 
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It would have been obvious to a person of ordinary skill in the art at the 
time the invention was made to combine the teaching of Vu within the system of 
Tsuria because Vu teaches providing secure storage and processing of 
cryptographic keys using in a more reliable secure processor mode / memory 
(Vu: Column 2 Line 53 - 61 ). 

As per claim 16, claim 16 encompasses the scope at least as described in 
claim 1 and besides that, in further regards to claim 1 , Tsuria as modified further 
teaches upon the insertion of the smart card into the card reader, a secure path 
is established between the smart card microprocessor and the ECD 
microprocessor after completion of authentication of a user and completion of a 
challenge/response protocol, thereby unlocking an encryption engine to allow 
encryption / decryption of encrypted data communications (Vu: Column 1 Line 38 
-48). 

As per claim 7, Tsuria as modified teaches the card microprocessor 
includes a cryptographic microprocessor (Vu: Column 2 Line 1 - 25). 

As per claim 9, Tsuria as modified teaches the hub includes control 
switches to bypass the hub to operate the computer in a non-secure mode of 
operation (Vu: Column 2 Line 53 - 61 : control switches is a logical switches 
between the process of secure and non-secure operating modes). 
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As per claim 17, Tsuria as modified teaches the ECD includes the data 
storage medium (Vu: Column 5 Line 35 - 36). 

As per claim 18, Tsuria as modified teaches the data storage medium is a 
virtual drive of the computer (Vu: Column 1 Line 35 - 40). 

As per claim 19, Tsuria as modified teaches the continued presence of a 
user is monitored (Vu: Column 6 Line 28 - 30: PIN may be continued to be 
requested at different stages of oprations). 

As per claim 21, Tsuria as modified teaches the ECD is configured to 
effectuate modifying of encrypted data (Vu: Column 6 Line 28 - 30: 
Authentication and validation of a user are required to unlock the cryptographic 
key of the system device in order for the user to gain access to the 
encryption/decryption functionality, which includes create, modify or copy 
encrypted data). 

As per claim 22, Tsuria as modified teaches the ECD includes an installed 
memory tray program configured to allow customization of ECD features (Vu: 
Column 2 Line 53 - 61 and Column 6 Line 28 - 30: configurable to allow for user 
customization to the level of security desired by the user such as secure and 
non-secure mode through the user entry of PIN). 
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3. Claims 1, 5 - 6, 10 and 12 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Tsuria (U.S. Patent 6178242), in view of Veil et al. (U.S. 
Patent 6092202). 

As per claim 1 , Tsuria teaches an apparatus to enable operation of a 
computer by authorized users when in a secure mode of operation, the 
apparatus comprising: 

a hub, the hub being configured to be portable and in communication with 
the computer (Tsuria: Column 6 Line 57-62 and Figure 1: IRD (Integrated 
Receiver-Decoder) is interpreted as the hub) the hub further including, 

an installed system tray program configured to allow customization of hub 
features; a card reader (Tsuria: Column 9 Line 1 - 14); 

a hub microprocessor (Tsuria: Figure 1 ) 

an encryption engine configured to encrypt / decrypt data communications 
between the hub and a data storage device protected by the hub (Tsuria: Column 
6 Line56 - Column 7 Line 57) including: 

a plurality of encryption/decryption channels (Tsuria: Column 9 Line 66 - 
Column 1 0 Line 40 and Figure 1 ); 

a control logic that is configured to determine which encryption / 
decryption channel is available and direct encrypted data passing through the 
hub available encryption / decryption channel (Tsuria: Column 9 Line 66 - 
Column 1 0 Line 40 and Figure 1 ); 
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a card, the card being configured for insertion into the card reader, the 
card including a card microprocessor (Tsuria: Column 9 Line 1 - 14 & Figure 1 / 
Element 120); and 

However, Tsuria does not disclose expressly a user authentication device, 
the user authentication device being configured to validate the user as an 
authorized user of the card wherein, if the user is validated as the authorized 
user, the card microprocessor being configured to pass a key to the hub 
microprocessor in response to the validation of the user as the authorized user of 
the card, thereby activating the encryption engine of the hub to allow encryption / 
decryption of data communications. 

Veil teaches a user authentication device, the user authentication device 
being configured to validate the user as an authorized user of the card wherein, if 
the user is validated as the authorized user, the card microprocessor being 
configured to pass a key to the hub microprocessor in response to the validation 
of the user as the authorized user of the card, thereby activating the encryption 
engine of the hub to operate in the secure mode of operation (Veil: Column 12 
Line 4 -12). 

It would have been obvious to a person of ordinary skill in the art at the 
time the invention was made to combine the teaching of Veil within the system of 
Tsuria because Veil teaches providing secure transaction of computer systems in 
a more reliable, easier implementation and cost effective manners (Veil: Column 
1 Line 5-20 and Column 3 Line 30 - 36). 
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As per claim 10, claim 10 encompasses the scope at least as described in 
claim 1 and besides that, in further regards to claim 1 , Tsuria as modified further 
teaches the card being adapted to be read by the card reader to validate a user 
as an authorized owner of the card in conjunction with the biometric identifier, 
wherein upon validation of the user, the encryption engine activates to create a 
secure environment (Veil: Column 12 Line 4-12). 

As per claim 5, Tsuria as modified teaches the user authentication device 
is a biometric scanner (Veil: Column 12 Line 4-12). 

As per claim 6, Tsuria as modified teaches the biometric scanner scans 
one of a fingerprint, an iris and a face (Veil: Column 12 Line 4-12). 

As per claim 12, Tsuria as modified teaches the encryption engine 
executes RSA public-key cryptosystem (Veil: Column 4 Line 46 - 55). 

4. Claims 2 - 4 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Tsuria (U.S. Patent 6178242), in view of Vu et al. (U.S. Patent 6557104), in 
view of Morais et al. (U.S. Patent 2003/0093669). 

As per claim 2, Tsuria as modified does not teach the hub includes a 
plurality of USB ports. 
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Morais teaches the hub includes a plurality of USB ports (Morais: Para 
[0033] and Para [0036]). 

It would have been obvious to a person of ordinary skill in the art at the 
time the invention was made to combine the teaching of Morais within the system 
of Tsuria as modified because Morais teaches establishing secure 
communications between computer systems connected in a networking 
environment (Morais: Para [0001]). 

As per claim 3, Tsuria as modified does not teach the hub includes a 
plurality of FIREWIRE ports. 

Morais teaches the hub includes a plurality of FIREWIRE ports (Morais: 
Para [0033] and Para [0036]). 

Same rationale of combination applies herein as above in rejecting the 
claim 2. 

As per claim 4, Tsuria as modified does not teach the computer is 
connected to the hub through one of a USB or FIREWIRE interface. 

Morais teaches the computer is connected to the hub through one of a 
USB or FIREWIRE interface (Morais: Para [0033] and Para [0036]). 

Same rationale of combination applies herein as above in rejecting the 
claim 2. 
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5. Claim 13 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Tsuria (U.S. Patent 6178242), in view of Veil et al. (U.S. Patent 6092202), in view 
of Lelong et al. (PN: 6463540). 

As per claim 13, Tsuria as modified does not disclose expressly the 
encryption control device is hot pluggable. 

Lelong teaches the encryption control device is hot pluggable (Lelong: 
Column 1 Line 52). 

It would have been obvious to a person of ordinary skill in the art at the 
time the invention was made to combine the teaching of Lelong within the system 
of Tsuria as modified because Lelong teaches a more flexible and dynamic 
mechanism of an attachable interface of computer systems (Lelong: Column 1 
Line 45 - 52). 

6. Claim 14 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Tsuria (U.S. Patent 6178242), in view of Veil et al. (U.S. Patent 6092202), in view 
of Walter et al. (U.S. Patent 6151677). 

As per claim 14, Tsuria as modified does not disclose expressly the 
encryption engine is a field programmable gate array. 

Walter teaches the encryption engine is a field programmable gate array 
(Walter: Column 3 Line 56 - 57). 
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It would have been obvious to a person of ordinary skill in the art at the 
time the invention was made to combine the teaching of Walter within the system 
of Tsuria as modified because Walter teaches providing a more flexible and 
secure method by using a programmable information security architecture with a 
firmware implemented data encryption and decryption algorithms (Walter: 
Column 3 Line 50-61). 

7. Claim 15 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Tsuria (U.S. Patent 6178242), in view of Veil et al. (U.S. Patent 6092202), in view 
ofVu etal. (PN: 6557104). 

As per claim 15, Tsuria as modified does not disclose expressly the card 
includes a card microprocessor, the card microprocessor being configured to 
execute a challenge/response protocol for establishing a secure path through the 
encryption control device. 

Vu teaches the card includes a card microprocessor (Vu: Column 2 Line 1 
- 25), the card microprocessor being configured to execute a challenge/response 
protocol for establishing a secure path through the encryption control device (Vu: 
Column 1 Line 34-46). 

It would have been obvious to a person of ordinary skill in the art at the 
time the invention was made to combine the teaching of Vu within the system of 
Tsuria as modified because Vu teaches an enhanced security system for secure 
processing of cryptographic keys (Vu: Column 1 Line 7 - 9). 
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8. Claim 20 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Tsuria (U.S. Patent 6178242), in view of Vu et al. (U.S. Patent 6557104), and in 
view of Miller (PN: 6038320). 

As per claim 20, Tsuria as modified does not disclose expressly the ECD 
is locked by a hot key sequence. 

Miller teaches the ECD is locked by a hot key sequence (Miller: Column 1 
Line 41 -42). 

It would have been obvious to a person of ordinary skill in the art at the 
time the invention was made to combine the teaching of Miller within the system 
of Tsuria as modified because Miller teaches a flexible and enhanced security 
method to securely protect the computer from unauthorized access (Miller: 
Column 1 Line 40 -47). 
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Conclusion 

Applicant's amendment necessitated the new ground(s) of rejection 
presented in this Office action. Accordingly, THIS ACTION IS MADE FINAL. 
See MPEP § 706.07(a). Applicant is reminded of the extension of time policy as 
set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire 
THREE MONTHS from the mailing date of this action. In the event a first reply is 
filed within TWO MONTHS of the mailing date of this final action and the advisory 
action is not mailed until after the end of the THREE-MONTH shortened statutory 
period, then the shortened statutory period will expire on the date the advisory 
action is mailed, and any extension fee pursuant to 37 CFR 1 .136(a) will be 
calculated from the mailing date of the advisory action. In no event, however, will 
the statutory period for reply expire later than SIX MONTHS from the date of this 
final action. 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Longbit Chai whose telephone number is 
571-272-3788. The examiner can normally be reached on Monday-Friday 
8:00am-4:00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Ayaz R. Sheikh can be reached on 571-272-3795. The 
fax phone number for the organization where this application or proceeding is 
assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll- 
free). 
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Examiner 
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